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BROADCAST AND RErFPnnnNr SYSTEM. ANn C ONDmOMAT ACCESS 

SYSTEM THEREFOR ~ ^ 



TTie present invention relates to a broadcast and reception system, in particular to 
mass-market digital interactive satelUte television system, and to a conditional 
5 system thereifor. 



a 

access 



In particular, but not exclusively, the invention relates to a mass-market broadcast 
system having some or all of the following preferred fcaturcs:- 

• It is an information broadcast system, preferably a radio and/or television 

broadcast system 

• It is a satellite system (although it could be applicable to cable or terrestrial 
transmission) 

• It is a digital system, preferably using the MPEG, more preferably the MPEG- 
2, compression system for data/signal transmission 

• It affords the possibility of interactivity. 

15 More particularly the present invention relates to so-called pay television (or radio) 
where a user/viewer selects a programme/film/game to be viewed for which payment 
being referred to as a pay-per-view (PPV) or in the case of data 
to be downloaded a so-called pay-per-fiie (PPF). 

With such known PPV or PPF systems a si^ficant amount of time is required to be 
20 spent by the user/viewer in order to carry out the actions riecesskry to actually access 
the product being selected. ; . 

F6r example, in one known system the sequence of steps vi^ich^ave to be carried out 
are' as foiloWs:- ^ : • 



-I) The user telephones a so^^led Subscribcf^anag^ment System (SMS).. 
25 which in this known systdih incl»ides '^number o^ human operators which ansvi^er t£- 
subscriber's call and to whom the; subswiber communities the n^eessaiy inforniatiftn; 
concerning the selected product and c^ncemmg the "fif^dikl stafius of the subs^bei^ 
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to a so-called Subscriber Authorization System (SAS) which has included in it or 
associated with it a plurality of communications servers. 

ii) The operator at the SMS theii 'has to check the financial status of the 
user before authorising the connection from the communications servers to the user's 
5 television set so that the product can be delivered and viewed by the user. 

In another known system the human operator is replaced by an automatic voice server 
so that when the user telephones the SMS he/she hears a voice activated recording to 
which the user conveys the same ihfomiation as I) above. 

This second arrangement reduces the delay inherent in the first described arrangement 
10 which can be more easily overloaded when large numbers of users are wishing to 
order a product at the same time. 

However, even with this second arrangement the user is involved in inputting 
significant information in the form of lengthy serial numbers which operation provides 
plenty of scope for trrof as well as being time (consuming.' 

15 The third known arrangement involves 'the user making use of existing saeen based 
systems such as MINTTEL in France and PRESTEL in the United Kingdom, which 
systems replace the voice activated server tefeife^^ tb above in connection with the 
second arrangement. The MINITEL and PRESTEL systems themselves incorporate 
a modem at the. consumer end. * ; - 

20 In all these known arrangements the user is involved in the expenditure of significant 
time and effort in inputting all the information necessary to enable the system to in 
effect lauthorize theitransmissibn of the ^osen ptoduct to the user's television set. 

In the caseroia satellite tdevisiOn-systSb^^^ a &rther delay involved in the user 

actually receiving the product selected. 
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In PPV and PPF systems the key element in- controlling the user's access to pn>ducts 
are so-called Entitlement Management Messages (EMM), which have to be injected 
into the system in order to give the user product access. More particularly the EMMs 
are the mechanism by which the encrypted data representative of a product is 
5 decrypted for a particular individual user. 

m known satellite television systems the EMMs are transmitted to the user's 
televisions via the satellite link at regular intervals in the MPEG-2 data stream Thus 
m the case of a particular user's EMM . there can be a significant delay of perhaps 
several minutes before the user's next EMM transmission arrive at that user's 
10 television set. 

This transmission delay is in addition to the delay referred to earlier which is inherent ^ 
in the user having to manually input certain data into the system. Tl,e cumulative - 
effect of these two delays is that it may take perhaps typically five minutes for a user 
to be able to gain access to the selected product. . ■, 



15 



20 



25 



nie present invention is concerned with py^rGoming this problem. - 

In a to aspect, the present invention,, provides .a . conditional access system 
comprising: 

means for generating a plurality <rf (preferably conditional access) messages; 



and 



means for receiving the messages, said receiving means being adapted to 
communicate with said generating means via a communications server comiected 
directly to said .generating , . • .^^ 



Preferably, the message js,an entiUement m^e for;t«nsmission. (for' example by 
broadcast) to the receiving means, said generating means being adapted to generate 
entitlement jne^ages in^^esponse to..<k^a,K^iyedfrom ^dlrccciyingm^^ . 



The generating means may be arranged to transmit a message as a packet of digital 
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data to said receiving means either via said communications server or via a satellite 
transponder. 

The receiving means may be connectable to said communications server via a modem 
and telephone link. 

5 In a related aspect, the present invention provides a conditional access system for 
affording conditional access to subscribers, comprising: 
a subscriber management system; 

a subscriber authorization system coupled to the subscriber management 
system; and 

10 . a communications server; said server being connected directly to the subscriber 

authorization system. 

The system may further comprise a receiver/decoder for the subscriber, the 
receiver/decoder being connectable to said communications server, and hence to said ^ 
subscriber authorization system, via a modem and telephone link.^^ 

15 In a second aspect, the present invention provides a broadcast and reception system 
including a conditional access system as desc^ 

In a third aspect, the present invention pirovides i broadcais't and reception system 
comprising: ; . . . : . : 

means for generating a plurality of entitlement messages relating to broadcast 
20 programs; ;: ' ' ^ 

means for receiving said messages from said generatiiig means; and 
means for connecting the receiving means to the generating means to receive 
, said loaessages, said:, connecting^' m^ a dedicated 

connection between the recfeiving means ^d the generaf ihg means. 

25 The dedicated connection would typically be a hard-wired connection and/or a 
: vmodj^nimed conxiectibh; A^ith'tHe pb^ibilitjf 'of the'bdnn made via a cellular 
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telephone system. In other words, the dedicated, connection is capable of forming a 
cham^el of communication (from point to point). ll,is is in contrast to broadcasting 
Of information through the air or ambient medium. ll,e com^ecting means would 
typically be a modem at the receiving means. 

5 Hence, in a closely related aspect, the present invention provides a broadcast and 
reception system comprising: 

means for generating a plu^lity of entitlement messages relating to broadcast 

programs; 

means for receiving said messages from said generating means via a modem- 
10 and ' 



15 



means 



means for cpmiecting said modem to said generating means and said receiving 



Hie above features can afford the advantage of providing the user the n.cesstxy 
viewmg authorization (via the ENfM) more quickly, than has hitherto been possible 
partly because, since the SAS typically uses a smaller amount of compute code t^ - 
the SMS. the SAS can operate more efficiently (and in real time), partly because the 
SAS can itself, directly, generate the requisite EMM. and partly becausfe the EMM c^ 
be passed to the user or subscriber yia a ,dedic,t^. (typically modemmed) link. 

Preferably, the generating^ meanp is comiected to said modem,via a communications 
20 server which is preferably included in or associated with said generating means. 

me receiving means may be further adapted to receive said entitlement messages via 
a satellite transponder. ^ . 

Hic receiving means may be a reccjver/decoder pomprismg.mean^ for treceiMiig a 
compressed MPEG-typ, sigpai. nieam for,dep^ing tl,e rec^ved signal to provid^^ a 
25 television signal and means for supplying the television signal to a television. 

Preferably, the 
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via said modem and comiecting means. The receiving means may comprise means 
for reading a smartcard insertable thereinto by an end user, the smartcard having 
stored therein data to initiate automatically the transmission of a message from said 
receiving means to said generating means upon insertion of the smartcard by the end 
5 user. 

In addition, the system may further comprise a voice link to enable the end user of 
the broadcast and reception system to communicate >yith the generating means. 

It will be understood from the. above that the present invention provides two 
arrangements by which the time it takes for an end user to access a desired product 
10 is reduced. Preferably both arrangements are employed to achieve the maximum time 
saving but either arrangement can be used individually. 

According to a further aspect of the present invention, there is provided a broadcast 
and reception system, comprising, at the broadcast end: ' 

a broadcast system including, means for broadcasting a callback request; 
15 and at the reception end: ; - ' : ' 

.. . a receiver including means for calling back the broadcast system in response 
to the callback request. - • ' ' ' ' ' - . . . - . 

By providing -that the broadcast system can request the receiver to call it back, the 
possibility is afforded of the broadcast system obtaining information from the receiver 
20 about the state of the receiver. 

Preferably, the means . for - calling .back the broadcast System includes* a modem 
connectable to a telephone system. By using a modemmed back channel, a simple 
vway of .putting the invention^intofeff^ canbe jprovidedr'^ " ' 

Preferably also, the means for calling back the broadcast system is arranged to transfer 
25 .^r^ to the Jbroadoastrlsystem. inf oimation' dMi^im thfe recieiV6rl This information might 
include the number of remaining tokens, the number of pre-booked sessions, aiid so 



wo 98/43426 



PCT/EP97/02108 



5 



15 



20 



- 7 - 

on. 



inferably, ttc hoadoas. system includos m«m for aorfag ,he intoanMon. so tta, 
It can be processed at a Uter time, as desired. 

Preferably, the broadcast means is arranged to broadcast a callback request which 
mcludes a command that the callback be made at a given time, and the means for 
calhng back the broadcast system is arranged, to tespond ro said command By 
atranging for the callback to be later than the act.^ request, greater flexibiUty can be 

imparted to the system. 

The broadcasting means may be arranged to , broadcast as the callback request one or 
10 more Entitlement Messages for broadcast. . ; - - - . 

Preferably, the broadcast system includes.means for generating a check message (sudl^ 
as a random number) and passing this to the. receiver, the receiver includes means for 
cncryptmg the check, message and passing, this to the /broadcast system and 
broadcast system further includes means for decrypting the check message received 
from the r^^^^^^^ message. In this way 

It can be checked whether the receiver is genuine. 

Any of the above features may be combined tpgether in any approjaiat^ combination. 
They may also be provided, as appi;opnatc^^ .. 

Preferred features of the present invention will now be described, purely by way of 
example, with..refer^nce to the .accompan^^ ■ ■ • ; 

Figure 1 shows the overall . ardntecture of ^^igit^.^e^^^^^^^ 
preferred embodiment of the present invention; 

system; . 
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Figure 3 shows the structure of an. Entitlement Management Message used in the 
conditional access system; 

Figure 4 is a schematic diagram of the hardware of a Subscriber Authorisation System 

,* 

(SAS) according to a preferred embodiment of the present invention; 

5 Figure 5 is a schematic diagram of the architecture of the SAS; 

Figure 6 is a schematic diagremi of a Subscriber Technical Management server 
forming part of the SAS; 

Figure 7 is a flow diagram of the procedure for automatic renewal of subscriptions as 
implemented by the SAS; 

10 Figure 8 is a schematic diagram of a group subscription bitmap used in the automatic 
renewal procedure; . . 

Figure 9 shows the structure of an EMM used in the automatic renewal procedure; 
Figure 10 shows in detail the structure of the EMM; • 

Figure 11 is 4 schematic diagram, of janvdrdef centralis when used to rbceive 

conmiands directly through cpmmunications servers; - • 

Figure 12 illustrates diagrammatically a Figure 2 showing dtfe embodiment of 

the present invention; ^ ' v . . * 

■ ' " . .: ^'. •• ■ '-••'-'•^ •• '■■ 

Figure 13 is a sdiematic diagr^ of the order centralized server when used to receive 

commands frpm th^ to reiquest a callbiackV 

" * *• * * 

.Figure»14:js a, schematic diagram b£tfie^ communications servers; ' 



15 



20 
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Figure 15 Show. ,h= .a^„ to which EMM mission cyCc .,c is varied according 
to the timing of a PPV event; 

Figure 16 is a schen«,ic diagram of a Message Emitter used ,o en,i< EMMs; 

Rgure 17 is a schemaUc diagram showing ,he mam,er of storage o, EMMs wiUun U.e 
5 Message Emitter, . . 

Figure 18 is a schematic diagram of a smartcaid;. . . 

Figure 19 is a schematic diagram of an arrangement of zones in the memory of the 
smartcard; and 

Figure 20 is a schemaac diagram of a PPV event description. 

An overview of a digital television hroadcas, and reception system 1000 according to 
tte pres«« invenHon is shown in Figure 1. -n,e invention includes a Jay 
conventtona! digiM teleyisio, system 2000 which uses the known MPEG-^ 
compression system to transmit compressed digital signals. In more detail. MPEG-2 
«.mprcssor 2002 in a broadcast centre receives a digital signal stream (typfcaUy a 
stream o, video signals), m compress* 2002 is competed to a multiplexer and 
scrambler 2004 by linkage 2QP<.. Il«.muldplexer .2004 receive a plurality of teher 
J. stgnals. assembles one or more fanspor, streams and transmits compressed 
dtgtta^ stgnals to a trat^itter 2008 of the b„«dcast centre via linkage 2010, which 
IZ'" V""*" variety o, forms including telecbin Unks: We transmitter 
^8 ttansmtts electromagnetic signals via upUnk 2012 towards a satellite' tr^idcr 
2014 where they are electronically processed and btoadcast via notional downlmk 
^ ^16 ^ «u«. receiver 2018,,cpnventionaUy in the foffl of a dish -^^^ 

end us^. The signals received, by receiver 20I.8.afe tta.is,H,tte<r»'an iiitegm^ed 
r^eiver/decoder 2020 owned or rented by the end user and omnected to the end user's 
televsion set 2022. , lie .cceiver/de«Hier.2e20 deCKfes Uie i=bmi*^ MPEGn2 ' 
signal mto a television signal for the television set 2022. 
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A conditional access system 3000 is connected to the multiplexer 2004 and the 
receiver/decoder 2020, and is located partly in the broadcast centre and partly in the 
decoder. It enables the end user to access digital television broadcasts from one or 
more broadcast suppliers, A smartcard, capable of decrypting messages relating to 
5 commercial offers (that is, one or several television programmes sold by the broadcast 
supplier), can be inserted into the receiver/decoder 2020. Using the decoder 2020 and 
smartcard, the end user may purchase events in either a subscription mode or a pay- 
per-view mode. 

An interactive system 4000, also connected to* the • multiplexer 2004 and the 
10 receiver/decoder 2020 and again, located partly in the broadcast centre and partly in 
the decoder, enables the end user to interact with various applications via a 
modemmed back channel 4002. 

The conditional access ^system 3000 is now described in more detail. 

With reference to Figure 2, in overview the conditional access system 3000 includes 
15 a Subscriber Authorization System (SAS) 3002. The SAS 3002 is connected to one 
or more Subscriber Management Systems (SMS) 3004, one SMS for each broadcast 
ppplier, by a respective TCP-IP linkage 3006 (although other types of linkage could 
. alternatively be iised).,^ Alternatively, one SMS could be shared betweeii tv^o broadcast 
suppliers, or one supplier could use twQ SMSs, and so on/ 

20 First encrypting units in the form of ciphering units 3008 utilising "mother" smartcards 
3,010 are connected to the SAS by linkage 3012: Second encrypting units again in the 
, form of ciphering units 3014^^utilising: mother sma^ 3016 are connected to the 
multiplexer 200;4 by linkage. 301S. JlSie receiver/decoder 2020 receives a "daughter" 
, , smartcard 302Q. It is connected. directly to the SAS 3002 by Gommunicatibiis Servers 
25 3022 yifi . the The SAS ^sends amongst other things 

. . subscription rights- to the. daughter .^artcaird on reiqueSf:' * ' 

.TTb.e .^siuartqau^ one or inore ' commercial operators. The 
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"mother" smartcard cncrypts different kinds of messages and the "daughter" smartcards 
decrypt the messages, if they have the lights to do so. 

The first and second ciphering units 3008 and 3014 comprise a rack, an electronic 
VME card with software stored on an EEPROM, up fo 20 electronic cards and one 
5 smartcard 3010 and 3016 respectively, for each electronic card, one (card 3016) for 
encrypting the ECMs and one (card 3010) for encrypting the EMMs. 

The operation of the conditional access system 3000 of the digital television system 
will now be described in more detail with reference to the various- components of the 
television system 2000 and the conditional access system 3000. • ■ . 

10 Multiplexe r and ScramhiPi. 

With reference to Figures 1 and 2, in the broadcast centre, the digital video signal is 
firet compressed (or bit rate reduced), using the MPEG-2 compressor 2002. This ^ 
compressed signal is then transmitted to the multiplexer and scrambler 2004 via the 
linkage 2006 in. order to be multiplexed with other data, sufch' as other compressed ^ 

15 , data. ,. .- ; 

. nie scrambler generates a control word used in the scrambling process and included 
in the MPEG-2 stream in the multiplexer 2004;- -The control word is generated 
internally and enables the end user's integrated reaiver/decoder 2020 to dcsciamble 
the programme. 



20 



25 



" J 



Access criteria, indicating how the programme is commercialised, are also idded to 
; . s^am.- The programme may be commerciaiisedMri either one of a 
number of "subscription". modes and/or onefof a number Ofi "Pay ter VieV (PPV) 
^■.^^^^'T-.bi the,wb^ption.„,oAr,-,the ^ndusef -SibScri«bk4o te"drW 
i .«?°???f5ici^,offcrs, or "bouquets", thus getting the rights to wSfchievtry diatiheliiside 
those bouquets. In the preferred embodinient, up;to=960 66mme*cial Viffers mk^ be 
selected from a bouquet of chamiels. In the Pay Per View mode, the end user is 
provided s^th tj,e capability -tj^, purchase events as he >vishesV- Tlii^ <^'fee acWe^ved 
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by either pre-booking the event in advance ("pre-book mode"), or by purchasing the 
event as soon as it is broadcast ("impulse mode"). In the preferred embodiment, all 
users are subscribers, whether or not they watch in subscription or PPV mode, but of 
course PPV viewers need not necessarily be subscribers. 

5 Both the control word and the access criteria are used to build an Entitlement Control 
Message (ECM); this is a message sent in relation with one scrambled program; the 
message contains a control word (which allows for the descrambling of the program) 
and the access criteria of the broadcast program. The access criteria and control word 
are transmitted to the second encrypting unit 3014 via the linkage 3018. In this unit, 
10 an ECM is generated, encrypted and transniitted on to the multiplexer, and scrambler 
2004. 

Each service broadcast by a broadcaist supplier in a data stream comprises a number 
of. distinct components; for example a television programme includes a video 
component, an audio component, a sub-title component and so on. Each of these 
15 . components of a service is individually scrambled and encrypted for subsequent 
broadcast to the transponder 2014. In respect of each scrambled cpmppneiit. of the 
service, a separate ECM is required. - . ^ ^ ' . 

Programme Transmission . . 

The multiplexer 2004 receives electrical sipi^ls comprising encrypted EMMs .from the 
20 SAS 3002, encrypted ECMs frorh the second encrypting unit 3014 axid compressed 

programmes from the compressor 2002. The multiplexer 2004 scrambles the 
. programmes' and transmits the scrambled programmes, the epcrypted EMMs and the 

encrypted ECMs as electric: signals to a transmitter 2008 of the broadcast centre via 

linkage 2010. The transmitter 2008 transmits electromagiietic sjignals towards the 
25 .satellite transponder 2014 via up^^ _ 

Programme Reception 

The satellite transponder 2014 receives and processes the electromagnetic signals 
' tranismitted^by the triailsihitter 2008 and transmits the signals on to the earth receiver 
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2016. .i,„3.s .cci«d b. receive. 2018 arc .n«».i,^ .„ ^ 

.n,cgra,e<i rcccive^decodcr 2020 owned or ,e„,ed by 0,e end u«r «d conneced .o 
.he end user, .elevision se, 2022. Tt. »ceiver/decoder 2020 demultiplexes U,e 
signals ,0 Obtain scran,bled programmes with encrypted EMMs and encrypted ECMs. 

B *e p^gramme is no. scrambled, that >; no ECM has been t^nsmitted with the 
MPEG-2 stream, the receivet^decoder 2020 decompresses the data and transfonns the 

■ aS^al'-'o a video signal for transmission to television set 2022. 

10 rT"' "^''""^'^ ^ 'tracts the corresponding 

ECM from the MPEG-2 stream and passes the ECM to fl„ .daughter" smartcard 3020 
of the end user. This slots into a houstog in d,. receiver/decoder 2020. The daughter 
smartcard 3020 controls whether U,e end user has fhe right to decrypt «,e ECM and 
to access the programme. If no,, a. negative status is passed to the receiver/decoder 
2020 to mdtcate «u.t the programme camro. be descmmbled. If the end user docs 
have. he righ^. the ECM is decrypted and, Wc^^^^^ The decoder 

2020 can ,hen descramble the progr^me using this control word. The MPEG-2 ' 
s,^ is decompressed and translated mto a video signal for onward transmission to 
television set 202Z ...... 

Subscriber Manammi-n. System P """) 

20 A Subscriber Managenien, Syi,em; (iisy 3004; . 
manages, amonp. „.hers. all of fti .nd iuser files, commercial offers (such as UnSs 
and promoHons). sut^p,ions, PPV deiails, and dau regarding end , user consumption 
• and-authori^don. The SMS m^, be-physic^Jly remo,e from_,he SAS. ; ., , 

■ Eabh^SMS 30iM flansiiis misage^ to ^^^i;^ 3002. via respective 'liri.ge 3006 ■ 
wh^ m.p,y modifications to or orations of Entitlement Management Me^ages 
(EMMs) to be transmitted to end users. 
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modifications or creations of EMMs but imply only a change in an end user's state 
(relating to the authorization granted to the end user when orderinjg products or to the 
amount that the end user will be charged). 

As described later, the SAS 3002 sends messages (typically requesting infonnation 
5 such as call-back information or billing information) to the SMS 3004, so that it will 
be appeu-ent that communication between the two is two-way. 

Entitlement Management Messages (EMMs) 

The EMM is a message dedicated to an individual end user (subscriber), or a group 
of end users, only (in contrast with an ECM, which is dedicated to one scrambled 
10 progranmie only or a set of scrambled programmes if part of the same commercial 
offer). Each group may contain a given number of end users. This organisation as 
a group aims at optimising the bandwidth; that is, access to one group can permit the 
reaching of a great number of end users. . 

Various specific types of EMM are used in putting the present invention into practice. 

15 Individual EMMs are dedicated to individual subscribers, and arc typically used in the 
provision of Pay Per View services; these contain the group identifiier and ttie position 
of the subscriber in that.group,: So-called "Group" subscriptiofa EMMi; are dedicated 
to groups of, say, 256 individual users^ and are typically used in the administration of 
some subscription services. This EMM- has a group identifier and a subscribers' 

20 group bitmap. Audience EMMs are dedicated to entire audiences, and might for 
, example be used by a,: partidiilar operator- to provide certain free services. " An 
"audience'Ms the : totality of . subscribers having smartcards which bear the same 
. Operator , Identifier (OPI). i Finally^ a "uniqiie** EMM is ad^esised to the unique 
identifier of the smartcard. ..- ' H . - --^^ • • • - ' • . 

r r. • . 

25 .The, structure of .a itypical .EMM is;inc)W described with refefenbe to Figure 3. 
Basically,, the EMMsiWhich is implemieilte'd as.a se^ bits', comprises 

a header 3060, the EMM proper 3062, and a signature 3064. The header 3060 in turn 
^ . qpjp Poises, a. type identifier 306^r;to. identif^^ whether the type is individual, group. 
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audience or some other type, a length identifier 3068 which gives the length of the 
EMM, an optional address 3070 for the EMM, ah operator identifier 3072 and a key 
identifier 3074. Ihe EMM proper 3062 of course varies greatly according to its type 
Ftnally. the signature 3064, which is typically of 8 bytes long, provides a nun^ber of 
5 checks against corruption of the remaining data in the^EMM. 

Subscriber AuthoriTatin n System ( fiAK} . / 

The messages generated by the SMS 3004 are passed via linkage 3006 to the 
Subscriber Authorization System (SAS) 3002. which in turn generates messages 
acknowledging receipt of the messages generated by the SMS 3004 and passes these 
10 acknowledgements to the SMS 3004. 

A. sho™ in Figure 4, a, U,= l^Mwar. level tt,c SAS comprises in known faslnon a 
maintane computer 3050 (in .he piefcxed embotoem a DEC machine) connected " 
to one or more keyboards 30S2 for dau and command input, one 6t more Visual - 

1, !^'''"'''^^"'^'"''^"*^P'"^'''°«P"''^—n and data storage means 

3056. Some redundancy in hardware may, be^provided. " \ « 

A. the software level the SAS rur,s. in the.p„ferred embodimen, on i standard open - 
. VMS operating system, a suite of «.ftware. whose,ar<!hitecture is now described in 
overvtew with reference to,Fig,re S; it ,win be Imaenadod that the stfftirare could 
alteratively be implemented in hard»!are.!.<r , . ■: , 



20 



25 



m ov^iew .the SAS.compris^ a- Subscription: ehain area. 3100 to give rights for 
subscnption^mpde and to renew the,xi^ts automatically each month, a Pay Per View 
Cham area 3200 to ^ve rights for PPV events, and ah EMM Injector ^Sbo for passing 
EMMS created by the Subscription and PPV chain areas to the^multiplexer and 
scrambler 2004. and hence to feed the MPEG stream with EMMs. If other rights are 
to. be granted, sucd^ as Pay Per FUe .(PPF^^ 

software, o.auser's.Pers.onal:Comput,^^ .-; 



One Afflctip. Of Ac, SAS. 30Q2 is.,te.*anage. ths: access' H^' .0 ' i616«isioo 
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programmes, available as commercial offers in subscription mode or sold as PPV 
events according to different modes of conimercialisation (pre-book mode, impulse 
mode). The SAS 3002, according to those rights and to information received from the 
SMS 3004, generates EMMs. for the subscriber. 

5 The Subscription Chain area 3100 comprises a Command Interface (CI) 3102, a 
Subscriber Technical Management (STM) server 3104, a Message Generator (MG) 
3106, and the Ciphering Unit 3008. 

The PPy Chain area 3200 comprises an Authorisation Server (AS) 3202, a relational 
database 3204 for storing relevant details of the end users, a local blacklist database 
10 3205, Database Servers 3206 for the database, an Order Cciitralized Server (DCS) 
3207, a Server for Programme Broadcaster (SPB) 3208, a Message Generator (MG) 
3210 whose function is basically the same as that for the Subscription Chain area and 
is hence not described further in any detail, and the Ciphering Unit 3008. 

The EMM Injector 3300 comprises a plurality of Message Emitters (MEs) 3302, 3304, 
15 3306 and 3308 and Software Multiplexers (SMUXs) 3310 and 3312. In the preferred 
embodiment, there are two MEs, 3302 and 3304 for the Message Generator 3106, with 
the other two MEs 3306 and 3308 for the Message Generator 3210. MEs 3302 and 
3306 are connected to the SMUX 3310 whilst MEs 3304 and 3308 are connected to 
tlie.SMUX3312,^- .. r',." ^ • ' 

20 Each of the three main components of the SAS (the Subsoiption Chain area, the PPV 
Chain area and the EMM Injector) ^e now considered iii more detail. 

Subscription Chain Area . : » - ; 

Considering first the Subscription Chain area 3100, the Command Interface 3102 is 
primarily for despatching messages from the SMS 3004 to the STM server 3104,^ as 
25 y/pll as tp the PCS,3206, and froia the SMS/ The Command Interface 

takj&s as input from itheoSMS'. citKfc^ batch files containing 

. CQpivrnsm^^^ It perfQtms. syntactic :!ania1ysis On the licii^ages^ cbmihg from the STM 
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(parameter out of range, missing p3i^«„ ^ n a message 

« ,o™ in a ana a.^ ^ 

"™ '"^^^^''^ "° ""^ ^""""P'- Chain 
the renewal of existmg subscribers. As shown in the fli„e comm,„H 
- Message Oenerator ... aibei. h. , .Cerent Z^rr:: 

commands are passed to .he SIM s«ver. For caoh c^nmand. the STM se^ert 

:Zll T " — '» - a O".. When the:3 

conunandhasbeensuccessfulIyprocessedandsenttotheMG. ' ^■ 

The s™ sen-er includes a subscriber database 3120, in which aU the relevant 
15 or the subscHbers are stored (smartcard number. co™n,erci^ ^^-^ 

oi me commands sent bv the n -^i no ^ • . - 
,k' ■ ^^"''"'l"2.^S«'«'*«<»ntent of the database; aiMoixtates^ 

th=databaseyhenthe«nnBand5,arev,lidc..-.,. ,: .™>"P<lal« 

^s ^er^dtheMCasweUasabadcupdiskHFOam ..e purpose o, the 
FIFOS .s to average a. flow. « co.^ ftom the a if th. MG isl able to ' 
re^ond for a while for any reason Th,„ , 

ofth.<!TM ^'^"^°'^«5''=«'-^='^''«'hatintheiaseof'acrash 
Of the Sm server or MO no command will be lost, since the SIM server is ananged 
.0 mpty (««t is. send to the MG) its HPOs when «st«^.;;.t^=.HF0s1^ 
25 implemented as files. . . . . . • . . 7. 

Ihe SIM serve, indud«,at its corc^.^is^tomiacVre^wal^^er 31^^ 
■ 'TT'^ '^^^•^ ~ may t».«.«,gbt.f as includa, U..: geiSaiion of 
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rights for the first time, although it will be understood that the generation of new 
rights is initiated at the SMS. As will become apparent, the two can be treated by 
roughly the same commands and EM Ms. 

Having the STM separate from the SAS, and the automatic renewal server within the 
5 SAS rather than (in known systems) in the SMS 3004, is a particularly important 
feature, since it can significantly reduce the number of commands which need to be 
passed from the SMS to the SAS (bearing in mind that the SMS and SAS may be in 
different locations and operated by different operators). In fact, the two main 
commands required from the SMS are merely commands that a new subscription 
10 should be started and that an existing subsaription should be stopped (for example in 
the case of non-payment). By minimising command exchange between the SMS and 
SAS, the possibility of failure of command transfer in the linkage 3006 between the 
two is reduced; also, the design of the SMS does not need to take into account the 
features of the conditional access system 3000 generally. 

15 Automatic renewal proceeds in the fashion indicated in the flow diagram of Figure 7. 
In order to reduce bandwidth, and given that a very high percentage of all renewals 
are standard, renewal proceeds in groups of subscribers; in the preferred embodiments 
. . there are 256 individual subscribers per groiipl The flow diagram begins with the start 
step 3130, and proceeds to step 3132 where a monthly activation of the renewal 

20 function is made (although of course it will be appreciated that other frequencies are 
also possible).. With a monthly frequency, rights are given to the end user for the 
current month and all of the following month^; at which point they expire if hot 
renewed., ^ ;/ - ,i. - 



In step 3134; ,the subscriber database 3120 is accessed in respect of each group and 
25 each individual within that group to determine whether rights for the particular 
.individual are- to : be TCT . . . - 

.In st€^^3136,7a group {Subscription bitxttia^p^is^ set up according' to the contents of the 
subscriber ^database, as iH Kgi^e'S*:' The bitmap comprises a group identifier 
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0 



On U,.s case Gro„p 1 - -or) 3138 »d 256 individual .ubscnber zones 3140. T.e 
md.v.dua, b«s in ^ «^,p a. se, .„ 1 „, accc^, ,„ „ 

IT'" ' '° "^-^ ^ '^^ - is 

Shown m the figure. 

nII'I»T M '"'"""^ '"'^-P'™ - 

Z^" °— 3106, in .,ep. 3U3 ^ M^sagc Gene.,0. se^ an 

C^oicsccnce da.e ,o indicate to *e sn,a«ca.d date beyond whicl. d. pa^cular 
subscpnon BMM is no. vaiid; „ d.s date is se, as .he end o, J, .1 

in «ep 3144 «.e Message G.n«a.or geneo.es fto. .he con^ands app.opna.e gn,up 
sui.cnp.,o„ EMMS and a^ Ophering- Uni. 3008 .o cipher I EMMs - 
c.p.>.ed BMMS being d^ passed .o .he BMM h-jeco. 3300. which, in 
■njcosfte EMMS inlo tee MI.EG-2da.a stream. . . - 

S.CP 3148 indicates d., a. above described procedure is repeated for each and every 
Sn^-p. m process is finally brought W an cnd,at stop step 3150. ^ 

Th. ^flow dia^ described above with' .refc..nce..,„ Figure 7 relates in 
^ctfic^ly the .new,. p,subscripao;...,Jle«^^ 
fr« audience rights and new subscribers. 



^.case Of ft,eaudi«,ce righ«. avaiW,leAr , specific .e.cvision;progrannnes or 
' J *=--made.avai.ab.e by fte s™ issuing a comn,and 

.0 the Message Generator .o genera.e appropria.e audience EMMs (for a whole 
audience) wiU, an obsol^ce date a given number of days (or weeks) hence. 
, MG comp,,.e, tte precis,,obsoIesce,^d^^ . 

to .he case Of new subscribers, .hese are deal. wi,h in Bvo s.ages^ Fl«^^^ 

smartcard in the receiver/decoder 2020 (if desired by tte operator) affords die 
subscrrber free rights for ^even p^p^^^j^,^.,^^ 

gen^tntg a,bita«, «or •hc.subscn^erwWsfe^udes. u^ielevan.^.bSM.Seite da^^^ 
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The subscriber then passes his completed paperwork to the operator managing the 
subscriber (at the SMS). Once the paperwork has been processed, the SMS supplies 
to the SAS a start, command for that particular subscriber. On receipt by the SAS of 
the start command, the STM commands the MG to assign a unique address to the new 
5 subscriber (with a particular group number and posifion within the group) and to 
generate a special, so-called "commercial offer" subscription EMM (as opposed to the 
more usual "group" subscription EMM used for renewals) to provide the particular 
subscriber with rights until the end of the next month. From this point renewal of the 
subscriber can occur automatically as described above. By this two stage process it 
10 is possible to grant new subscribers rights until the SMS issues a stop command. 

It is to be noted that the commercial o^er subscription EMM is used for new 
subscribers and for reactivation of existing subscribers. The group subscription EMM 
is used for renewal and suspension purposes. 

With reference to Figure 9, a typical subscription EMM proper (that is, ignoring the 
15 header and signature) gencrated.by the above procedure comprises the following main 
portions, namely typically a 256 bit subscription (or subsCTibers' ^oup) bitmap 3152, 
128 bits of management ciphering keys 3154 for the ciphering of the EMM, 64 bits 
of each exploitation ciphering key 3156 to enable the sniartcard 3020 to. decipher a 
control word to provide access to broadcast progranunes, and 16 bits of obsolescence 
20 date 3158 to indicate the date beyond which, the, smartcard will ignore the EMM. In 
fact in the preferred embodiment three exploitation keys are provided, one set for the 
present month, one set for the next month, and one for resume purposes in the event 
of, system failure; - ; - m : . . ■ ; / \ y ' 

: In n[)ore: detail, the group subscription EMM proper has all ipf the above components, 
25 ; except the .nianagement ciphering kciy§ :3154.f The commercial offer subscription 
..EMM. proper (whiph. is ior; M indiyidualysubs^ includes instead of the full 
subscribers' group bitmap 3152 the group ID followed by the position in the group, 
. Sand.the^ manageQicfnt ciphering kcYS'3154;;^md-three exploitation keys3.156, .followed 
:^i : i by the jrelciyant.QbsQlesc^ ^.x % ^ v^-r ^ . ; 
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The Message Generator 3106 serves to transfdrrh commands issued by the STM server 
3104 into EMMs for passing to the Message Emitter 3302. With reference to Figure 
5, firstly, the MG produces the EMMs proper and passes them to the Ciphering Unit 
3008 for ciphering with respect to the management and exploitation keys. The CU 

5 completes the signature 3064 on the EMM (see Figure' 3) and passes the EMM back 
to the MG, where the header 3060 is added. The EMMs which are passed to the 
Message Emitter are thus coniplcte EMMs. The; Message Generator also determines 
the broadcast start and stop time and the rate of emission of the EMMs, and passes 
• these as appropriate directions ^ong with the EMMs to the Message Emitter. The 

10 MG only, generates a given EMM' once; it is the ME which performs its cyclic 
transmission. 

Again with reference to Figure 5, the Message Generator includes its own EMM * 
database 3160 which, for the lifetime of the relevant EMM, stores it. It is erased once 
its emission duration has expired. The database is used to ensure consistency between 
15 the MG and ME, so that for example when an end us6r is suspended the ME will not - > 
continue to send renewals* In this regard the MG imputes the relevant operations--^ 
and sends thein to the ME. ' ^ ■ : ■ ^ v: 

On' generatidn of ah EMMi the MG asisi^^ a unique identifier to the EMM. When 
thfe MG passes 'the EMM to this -ME, it also^passK the EMM ID. This enables 
20 identification of a particular EMM- at' both-the MG and the ME. j • 

- Also concerning the Subscription Chain area, the Message Generator includes two 
FIFOs 3162 and 3164, one for each of the relevant Message Enaitters 3302 and 3304 
in the EMM Injector 3300, for storing the ciphered EMMs. Since the Subscription 
CHaih area' an* BMM Injector may be a sighifieaW distance;^ apart; the use of FIFOs 

25 . can allow full contiriuity in EMM ^^^^^ the links .3166 afid 316S 

- • between the two fail.- Similar HFO'-Sfeei provided in fhe^Tay Pcr^yiew^Chain area. 

One particular ^feature of the M&sage 'CJracrattfr i^^^^ 

access system in general concerns the^w^iy that it reduces the tenfph ^f the EMM 
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proper 3062 by mixing parameter length and identifier to save space. This is now 
described with reference to Figure 10 which illustrates an exemplary EMM (in fact 
a PPV EMM, which is the simplest EMM). The reduction in length occurs in the Pid 
(Packet or "Parameter** identifier) 3170. This comprises two portions, the actual ID 
5 3172, and the, length parameter for the packet 3174 (necessary in order that the start 
of the next packet can be identified). The whole Pid is expressed in just one byte of 
information, 4 bits being reserved for the ED, and four for the length. Because 4 bits 
is not sufficient to define the length in true binary fashion, a different correspondence 
between the bits and the actual length is used, this correspondence being represented 
10 in a look-up table, stored in storage area 3178 in the Message Generator (see Figure 
5). The correspondence is typically as -follows:- 



0000 = 


0 


0001 = 


1 


0010 = 


2 


0011 = 


3 


0100 = 


4 


0101 = 


5 


0110 = 


-6 


0111 -= 


7-..: 


1000 = 


8 


1001 = 


9 


1010 = 




ion = 


11 


1100 = 


12 


IlGl- • = 


16 


1110 - ^^ 




nil = 


32 



' - If will b8'^n that the length paS^s^ is- "not directly^-proportional to the actual 
'fenjgth df the packet; the rcl^^^ This 
30 allows for a greater range of packet length. • - i-'^ 
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. Pay Per View Chain Area . ■ ^ 

Concerning the Pay Per View. Chain area 3200, with reference to Figure 5 in more 
detail the Authorisation Server 3202 has as its client the Order Centralized Server 
3207, w^hich requests information about feach subscriber which connects to the 
5 Communications Servers 3022 to purchase a PPV product. 

If the subscriber is known from the AS 3202, a,set of transactions takes place. If the 
subscriber is authorized for the order, the AS creates a bill and sends it to the DCS. 
Otherwise, it signals to the OCS that the order is not authorized. 

It is only at the end of this set of transactions that the AS updates the end users 
10 database 3204 via the database servers (DBAS) 3206, if at least one transaction was 
authorized; this optimizes the number of database accesses. 

The criteria according to which the AS authorizes purchase arc stored in the database, 
accessed through DBAS processes. In one embodiment, the database is the same as 
the database accessed by the STM. 

i 

15 Depending on consumer profile, the authorization ^ may be deniedx 
(PPV_Foibidden,Casino_Forbidden ...)• These kind of criteria are updated by STM 
3104, on behalf of the SMS 3004. 

Other parameters are checked, such as limits allowed -for purchase (either by credit 
card, automatic payment, or number of authorized token purchases per day). 

20 In case of payment with a credit card, the number of the: .card is checked against a 
local blacklist stored in the local blacklist database 3205. ; — 

When all the verifications are successful, the AS:- 
^ : 1. r • .Generates a bilLand scpds ifctg^^fe^PCS,, which completes, this bill ajyd stores 
•it inr;a:ifile^:thisrfile being: later :,5ciit,-.t0j4h^^ SMS ^ for processmg (qustpiner actual 
25 billing); and r. : vi-x ^ « :(.] dv;o:- v ^ 
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2. Updates the database, mainly to set new purchase limits. 
This check-and-generate-bill-if-OK mechanism applies for each command a 
subscriber may request during a single connection (it is possible to order e.g. 5 movies 
in a single session). 

5 It is to be noted that the AS has a reduced amount of information concerning the 
subscriber, by comparison with that held by the SMS. For example, the AS does not 
hold the name or address of the subscriber. On the other hand, the AS does hold the 
smartcard number of the subscriber, the subscriber's consumer category (so that 
different offers can be made to different subscribers), and various flags >vhich state 

10 whether, for example, the subscriber may purchase on credit, or he is suspended or his 
smartcard has been stolen. Use of a reduced amount of information can help to 
reduce the amount of time taken to authorize a particular subscriber request. 

The main purpose of the DBASs 3206 is to increase database performance seen from 
the AS, by paralleling the accesses (so actually it does not make much sense to define 
15 a configuration with only one DBAS). An AS parameter determines how many 
DBASes should connect. A given DBAS may be connected to only one AS. 

. • ■ - J . • • 

The OCS 2307 mainly deals with PPV commands. It operates in several modes. 

Firstly, it operates to process commands isisued by the SMS, such as product 
refreshment (for instance, if the bill is already stored by the SMS, no bill is generated 
20 by the OCS), update of the wallet in the smartcard 3020, and session 
cancellation/update.., _ 

. , The. various steps in the. procedure are:- . , 

, 1. Identifying, thq^releyant subsoriber (using the AS 3202); , 
2. If vtdid, generate adequate commands to the Message Generator, in order to 
25 send an appropriate EMM. Commands may be: 

Product, commands. 
Update of the wallet, , „ 
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Session erasure. 

Note that these operations do not imply creation of billing information, since billing 
is already known from the SMS. These operations are assimilated to "free products" 
purchase. 

5 Secondly, the OCS deals with commands received from the subscribers through the 
Communications Servers 3022. These may be received either via a modem connected 
to the receiver/decoder 2020, or by voice activation via the telephone 4001, or by key 
activation via a MINTTEL, PRESTEL or like system where available. 

Thirdly, the OCS deals with callback requests issued by the SMS. These last two 
10 modes of operation are now discussed in more detail. 

In the second type of mode described above it was stated that the OCS deals with 
commands received directly from the end user (subscriber) through the 
Communications Servers 3022. These include product orders (siich as for a particular 
PPV event), a subscription modification fcqueisted by the subscriber; and a reset of a 
15 parental code (a parental code being a code by which psurents may restrict the right of 
access to certain programmes or classes of programmes). 

The way in which these conmiands are dealt with is now described in more detail with 
reference to Figure 11. 

Product orders by a subscriber involve the following steps: 
20 1. Identifying through the AS the caller who is making a call through the CS 

3022 ordering a particular product; 
2. Checking the caller's request validity ,* agaiin using the AS' (w&efe the order is 

placed using the receiver/dccddW 2020, tins is' achieved' by' verifying the 

smartcard 3020 details); 

25 3. Ascertain the price of the 'purchase; * " 

%( ^ * ► ^.^ '"i'^ 'f ^ .■"•/'■■* "* 

4. Check that the price docs not exceed tlic calcr's 'cred^ limit etc; 

5. Receiving a partial bill from the AS; 
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6. Filling additional fields in the bill to form a completed bill; 

7. Adding the completed bill to a billing information storage file 3212 for later 
processing; and 

8. Sending corresponding command(s)' to the PPV Message Generator 3210 to 
5 generate the relevant EMM(s). . 

The EMM(s) is sent either on the modem line 4002 if the consumer placed the 
product order using the receiver/decoder 2020 (more details of this are described 
later)» or else it is broadcast. The one exception to this is where there is some failure 
of the modem connection (in the case where the consumer places the order using the 
10 receiver/decoder); in this event the EMM is broadcast over the air. 

A subscription modification requested by a subscriber involves: 

1. Identifying the caller (using the AS); 

2. Sending information to the Command Interface; the CI in turn forwards this 
information to the SMS; and 

15 3. Via the CI, the OCS then receives an answer from the SMS (in terms of the 
cost of the .modification^ if , the modification is possible).. 

If modification was requested, using the receiver/decoder, the OCS. generates a 
confirmation to the SMS. Otherwise, for exaniple in the case of phone or Minitel, the 
subscriber is prompted for confirmation and this answer sent to the SMS via the OCS 
20 and the CI. , . . 



Reset of a parental code involves: , „ .. . 

1. . Identifymg the caller , (using. AS)^ . - - , - 

2. Sending a command to the MG to generate an appropriate EMM bearing an 
appropriate reset passworcj. . ... , . . , .. 



25 In the case of reset -of parentaljcod^^^^ to reset the . QQd9^ is for security 

reasons not permitted to originate from the receiver/decoder. Only the SMS, 
' ' ^ > /'telephone. . and ^W^^ or Ijke can^.originat^^ Henc^ in this 
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particular case the EMM(s) are broadcast oiily on air, never on the telephone line. 

It will be understood from the above examples of different modes of operation of the 
OCS that the user can have direct access to' the S AS, and in particular the OCS and 
AS, in that the Communications Servers are directly connected to the SAS, and in 
5 particular the OCS. This important feature is concerned with reducing the time for 
the user to communicate his colnmand to the SAS. 

This feature is illustrated further with reference to Figure 12, from which it can be 
seen that the end user's Set-^Top-Box, and in particular its receiver/decoder 2020, has * 
the capability of communicating directly with the Communications Servers 3022 - 
10 associated with the SAS 3002. Instead of the connection from the end user to the 
Communications Servers 3022 6f the SAS 3002 being through the SMS 3004 the 
connection is directly to the SAS 3002. 

In fact, as directly mentioned two direct connections are pirovided. 

The first direct totmectibn is^ by ^ voice Imk via a telephone 4001 and appropriate 
15 telephone line (and/or by MINITEL or like connection where available) where the end 
' users still have to input a scries of Voice commands 6r code numbers but time is saved 
' compared with the cdmmunicatidii being viii fhii SMS 3004: 

The second direct connection is from the receiver/decoder 2020 and the input of data 
is achieved automatically by the end user inserting his own daughter smartcard 3020 
20 thus relieving the end user of the job of having to input the relevant data which in 
turn reduces the time taken and the likelihood of errors 4n making that input. 

A further important feature which arises out of the abl6^i1s^discussiorf is^hcehi with 
reducing the time taken for the resulting EMM to be transmitted to the end user in 
' ^ Otder'to iiiitiate vwiwiiig by the iei?d^ser'b^^ the? Mected prdductt ' 

' 25 " in- bbad tehns^and with referent' to' ^Figuffc 12, the ^feaiMe-'^S^ agaihlack^^ by 



BNSOOCID: <WO 9a43426A1 I > 



wo 98/43426 



PCT/EP97/02108 



-28- 

providing the end user's receiver/decoder 2020 with the capability of communicating 
directly with the Conmiunications Servers 3022 associated with the SAS 3002. 

As described earlier the integrated receiver/decoder 2020 is connected directly to the 
Communications Servers 3022 by the modemmed ' back, channel 4002 so that 
,5 commands from the decoder 2020 are processed by .the SAS 3002, messages generated 
(including EMMs) and then sent back directly to the decoder 2020 through the back 
channel 4002. A protocol is used in the conmiunication between the CS 3022 and the 
receiver/decoder 2020 (as described later), so that the CS receive acknowledgement 
of receipt of the relevant EMM, thereby adding certainty to the procedure, 

10 Thus, for example, in the case of a pre-book mode the SAS 3002 receives messages 
from the end user via the smartcard and decoder 2020 via its modem and via the 
telephone line 4002, requesting access to a specific event/product, and returns a 
suitable EMM via the telephone line 4002 and modem to the decoder 2020, the 
modem and decoder being preferably located together in a Set-Top-Box (STB). This 

15 is thus achieved without having to transmit the EMM in the MPEG-2 data stream 
2002 via the multiplexer and scrambler 2004, the uplink 2012, satellite -2014 and 
datalink 2016 to enable the end user to view the event/producf ; : This , can save 
consideiably on time, and bandwidth: Virtual certainty is provided that as soon as the 
subscriber has paid for his purchase the EMM will arrive at the receiver/decoder 2020. 

20 In the third type of mode of operation of the QCS 3207 described above, the OCS 
deals with callback requests issued by the SAS. This is illustrated with reference to 
Figure > 13. . Typical^ callback requests have the purpose of ensuring, that the 
receiver/decoder 2020 calls back the SAS via the modemmedi back channel -4002 with 
the information that the SAS requires of the receiver /decoder. 

25' ; As :ihstructed by- the Command Interface : 3102, the ^subscription , chain ■> Message 
Generator 3106 generates and sends to the .receiver/decoder 202 a callback EMM. 
This EMM is ciphered by the Ciphering Unit 3008 for security reasons. The EMM 

I- = : • ixiayncontain.the>time/date at which; thc^re should wake, up and perform 
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a callback on its own; without being explicitly solicited; the EMM may also typically 
contain the phone numbers which the tenninal must dial, the number of further 
attempts after unsuccessful calls and the delay between two calls. 

When receiving the EMM, or at the specified time-date; the receiver/decoder connects 
5 to the Communications Servers 3022. The OCS 3207 first identifies the caller, using 
the AS 3202, arid verifies certain details, such as smartcard operator and subscriber 
details. The OCS then asks the smartcard 3020 to send various ciphered information 
(such as the relevant session numbers, when the session was watched, how many times 
the subscriber is allowed to view the session again/ thc way in which the session was 

10 viewed, the number of remaining tokens, the number of prebookcd sessions, etc). This 
information is deciphered by the PPV chain Message Generator 3210, again using the: 
Ciphering Unit 3008. The OCS adds this information to a callback information : ; 

storage file 3214 for later processing and. passing to the SMS 3004. The information 
is ciphered for security reasons. The whole procedure is repeated until there ^s 

15 nothing more to be read from the ismartcard-i ^ ^ " ' ' 

One particular, preferred . feature* of the callback .facility is that before reading t^ . ^. 

^ ismartcjfi-d (so just: after the identification of the caller using the AS 3202 as described ^ 
: above) a check is made by the SAS 3002 that . the receiver/d^ 
' ■ one rather than a pirated version or tompiutcr ^simulation.. Such a check is carried out 
20 in the following manner. The SAS generates a random number, which is received by 
the receiver/decoder, ciphered, and^then retumed to the SAS. The SAS deciphers this 
- . number.' If the deciphering is successful and the original random, number is retrieved, 
if is concluded that the receiver/decoder is* genuine, arid the procedure, continues. 
I ' Otherwise; the.procedure is discoritinUeii.~( 4^ C \ . . j.v^ 

25 Other functions which may occur during the callback are erasure of obsolete sessions 
: on the smartCM:d, or fiUing of the .wailet;4thisi;latter.^^ 

the section entitled "Smartcard/"). 1 ti: ct - ^ •\r.\t:r- , c :> 

; c r. .'u:u 7.. r • :': :: 'm-U tinvr-.r":\''j t?J r-IK,^ v^7V 

: Also as regardis theiPay- Per: ViewiXSiairi' area' 3200r descriptioa.ist Jiow made of the 
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Communications Servers 3022. At the hardware level, these comprise in the preferred 
embodiment a DEC Four parallel processor machine. At the software architecture 
level, with reference to Figure 14, in many respects the Communications Servers are 
conventional. One particular divergence from conventional designs arises from the 
5 fact that the Servers must serve both receiver/decoders 2020 cind voice communication 
with conventional telephones 4001, as well possibly as MINITEL or like systems. 

It will be noted in passing that two Order Centralized Servers 3207 are shown in 
Figure 14 (as "OCSl" and "OCS2;'). Naturally any desirjed number may be provided. 

The Communication Servers include two main servers ("CSl" and "CS2") as well as 
10 a number of frontal servers ("Frontal 1" and "Frontal 2"); whilst two frontal servers 
are shown in the figure, typically 10 or 12 may be provided per main server. Indeed, 
although two main servers CSl and CS2 and two frontal servers. Frontal 1 and Frontal 
2, have been shown, any number could be used. Some redundancy is usually 
desirable. . : ; . . ^ ; . , 

15 CSl and CS2 are coupled to OCSl and OCS2 via high level TCP/IP links 3230, 
whilst CSl and CS2.are coupled to Frpntal 1 and Frontal 2 yia . further/ TCP/IP links 
•3232. . . . • . ... - : ^ - , -..^ 

^ As illustrated, CSl and CS2 comprise servers for "SEM3R'* (transmission), "RECVR" 
(reception), '"VTX" (MINITEL, PRESTEL or ; the like), i'^VOX'^ (voice 
20 communication), and "TRM" (communication with the receiver/decoder). These are 
' coupled to the ."BUS" for communication of signals to jhe Frontal scryers.. ; 

: CSl and .CS2 communicate directly -with the, receiver/decoders 2020 via their 

-:':modemmed back chaumels4Q02 using, .the X25 The 
: relatively: iow-level' protocol :betwjcen. th^ Cpmmuiiications :§eryersr^ and J^e 
25 - receiver/decoders 3020 is: in one.prefei:red embodiment based; upon the .V42; standard 
. or.intematioiial Gerrr protocQl,.which:pr(widgs reliability by having cirgrjjfttection and 
data re-transmission facilities, and uses a checksimi routine to check the integrity of 
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the rc-transmission. An escape mechanism is also provided in order to prevent the 
transmission of disallowed characters. 

On the other hand, voice telephone communication is carried out via the Frontal 
Communications Servers, each capable of picking up, say, 30 simultaneous voice 
5 connections from the connection 3234 to the local telephone network via the high 
speed "T2" (El) standard telephony ISDN lines. 

Three particular functions of the software portion of the Communications Servers 
(which could of course alternatively be implemented fully in hardware) are firstly to 
convert the relatively low level protocol; information < received from the- 

10 receiver/decoder into the relatively high level protocol information output to the OCS; , 
secondly to attenuate or control the number of [simultaneous connections being made, 
and thirdly to provide several simultaneous channels without any mixing. In this last 
regard, the Communications Servers play the role of a form of multiplexer, withtjthe 
interactions in a particular channel being defined by a given Session. ID (identifier), 

15 which is in fact used throughout the communication chain. 

-Finally aisf^^^^^ Per View Chain area. 3200, and with reference againi^to 

Figure 5, the Server for Programme Broadcast (SPB) 3208 is coupled to one or more 
Progranmie Broadcasters 3250 (which would typically be located remotely from the 
- SAS) to receive programme 'mfoMdtion; :: Tlie. SPB fillers but for further use 
20 information c6rrcsponding to PPV events (sessions). 

A particularly important feature is that, the filtered prograratme event information is 
passed by the SPB. to the MG which in turn sends a directive (control command) to 
- the iHE to change the rate of cydic emission of the EMMs in "given circuihstances; 
^ ' this is' done by 4h6' ME finding -dll -^Ms .with the* relcvantrseSsion idratifier and 
25 ' chabgirig the 6ycle rate alloicatecl td^SuCh EMMs.: This feature might be thought of as 
' - a dynainic aHocatioh -of bandwidth f6f*i specific ;EMMs.>r; Cyclic EMM:;emission is 
- ' i . discussed iii mtfre detail- -in the 



BNSOOCIO: <WO 984343641 I > 



wo 98/43426 



PCT/EP97/02108 



-32- 

The circumstances in which the cycle rate is changed arc now described with reference 
to Figure 15, which demonstrates how cycle rate 3252 is raised a short while (say 10 
minutes) before a. particular PPV programme event until the end of the event from a 
slow cycle rate of say once every 30 minutes to a fast cycle rate of say once every 30 
5 seconds to 1 minute in order to meet the anticipated extra user demand for PPV events 
at those times. In this way band>yidth can be allocated dynamically according to the 
anticipated user demand. This can assist in reducing the overall bandwidth 
requirement. 

The cycle rate of other EMMs may also be varied. For example the cycle rate of 
10 subscription EMMs may be varied by the Multiplexer and Scrambler 2004 sending the 
appropriate bitrate directive. 

EMM Injector 

: Concerning the EMM Injector 3300, details of the Message Emitters 3302 to 3308, 
forming part of the EMM Injector, and acting as output means for the Message 

15 Generator, are now described with, reference to^pigure 16. Their function is take the 
EMMs and to pass them cyclically (in the manner of a carousel) via respective links 
3314 and 3316 to. the Software Multiplexers 3310 and 3312 and thence, to the 
hardware multiplexers and scramblers 2004. In return the software multiplexers and 
scramblers 2004 generate a global bitrate directive to control the oycralLcy cling rate 

20 of the EMMs; , to do so, the MEs take into account various parameters such as the 
cycle time, the size of EMM, and soj on;: In the figure, EMM_X and EMM _Y are 
group EMMs for operators X and Y, whilst EMM_Z ar^e other EMMs for either 
operator X or operator Y. 

Further description proceeds for an exemplary .one of4he Message Emitters; it will be 
25' . . appreciated that rtfae 'remaining MEs /operate in similar f£^hion. / The.: ME operates 
. under contrlbl of directives^ from: the ,MG,7npst notably transmission stsot sm stop tiipe 
• and emi^iqn rate^ as wdtas sessio^inupibctit^he EM PPV EMM. In relation 
; ' ' ^to the emission rate, in:tbe:pfeferrod;einibpd^^ the:relQvant directive may. take one 
/ * of five yalueislfrbm Very fast .to Yerjfi Slow, r.Thje numeric, values .fiprc iaot specified in 
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the directive, but rather the ME maps the directive to an actual numeric value which 
is supplied by the relevant part of the SAS. In the preferred embodiment, the 5 
emission rates are as follows:- 



1. 


Very fast 


- every 30 seconds 


2. 


Fast 


- every minute 


3. 


Medium 


- every 15 minutes 


4. 


Slow 


- every 30 minutes 


5. 


Very slow 


- every 30 minutes 



The ME has first and second databases 3320 and 3322. Hie first database is for those 
10 EMMs which have not yet achieved their broadcast date; these are stored in a series 
of chronological files in the database. The second database is for EMMs for 
inmiediate broadcast. In the event of a system crash, the ME is arranged to have the 
ability to rc-rcad the relevant stored file and perform correct broadcast. All the files 
stored in the databases are updated upon request from the MG, when the MG wishes 
15 to maintain consistency between incominjg directives and EMMs already sent- to thet 
ME. IHc EMMs aetiially being broadcast dre also stored in Random Access Memory^ 
... .-3324.;- ' -I-.-iJi-^ - ■ ' - ' ' - « ■ 

- A combination of the FIFOs 3162 and' 3f64an the Message Generator and the 
databases 3320 and 3322 in the Messagd'Qhitter incans that the two can operate in 
20 standalone mode' if the link 3166 between^ th^em is temporarily broken; the ME can 
^ - still brdadcaSt'EMMs. - - . - . ..q / ".^ - 

The Software Multiplexers (SMUX) 3310 and 3312 provide an interface between the 
' MEs arid '^the hardware • multiplexers 200'4\ ' In- the preferred embodiment^ they each 
• receive EMMs ftom twci of the MEs;-' although itfgener^« there is !h6 restriction on the 
25 ' ; number oPMEs that can be coimccted with one SMUX: ^e'SMUXs concentrate the 
. . : 'EMMs and theii pass them adcctfcfiiig to'lhe to the approptiate hardware 

multipltier? ' this- is- nedbssafy ' bbcaugfesthe ihardwaire multiplexes^ t^e the different 
- types of K^Ms^md plate tlSem atQ^fferent: places in ihcMPSGr-2 stream. The 
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SMUys also forward global bitratc directives from the hardware multiplexers to the 
MEs. ■ 

One particularly important feature of the ME is that it emits EMMs in random order. 
The reason for this is as follows. The Message Emitter has no ability to sense or 
control what it emits to the multiplexer. Hence it is possible that it may transmit two 
EMMs which are to be received and decoded by the receiver/decoder 2020 back to 
back. In such circumstances, further, it is possible that if the EMMs are insufficiently 
separated the receiver/decoder and smartcard will be unable to sense and decode 
properly the second of the EMMs. Cyclically eniitting the EMMs in random order 
can solve this problem. 

The manner in which randomization is achieved is now described with reference to 
Figure 17; in the preferred embodiment the necessary software logic is implemented 
in the ADA computer language. A particularly important part of the randomization 
is the correct storage of the EMMs in the databases 3320 and 3322 (which are used 
for backup puippses) and in the JRAM :3324. For a particular cycle rate, and operator, 
the EMMs are stored in a two-dimensional array, by rank 3330 (going say from A to 
Z) and number in the rank 3332 (going from 0 to N). A third dimen?iqix is added by 
cycle rate 3334, so that .there are as many two-dimensional arrays as . there are.,cycle 
rates. In the preferred embodiment there are 256* ranks and typically 200 or 300 
EMMs in each rank; there are 5 cycle rates. A final dimension to the array is added 
by the presence of different operators; there are as many three-dimensional arrays as 
there are operators. Storage; of the data in this fashion can permit rapid retrieval in 
the,event ;that the MG wants to delete .a particular EMM. ; • ; « ^ . . : 

Storage of the EMMs takes place according to the "hash" algorithm (otherwise known 
as. the; "one-way- hash function'*, This -operates on; a modulO; approach, so that 
sucde^iye ranks: are filled before) a>higher^ number in tlje rank is used);and the number 
of EMMs [ill. each rank remajix^us j:Oug]^ly> ponstant. . , The example is c^iisidered pf there 
being 256 ranks. When the MG sends the ME an EMM with identifer (ID) 1, the 
r-rank t*l" ;i? assig9^d.to.thiS:EMM,:^drit;t^«^t^^^ 3330. 
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Thc EMM with ID 2 is assigned the rank "2"^ and so on, up to the rank 256. The 
EMM with ID 257 is assigned the rank "1" again (based on the modulo function), and 
takes the second number in the first rank, and so on. 

Retrieval of a specific EMM, for example when deletion of a specific EMM is 
5 requested by the MG, is effected by means of the inverse of the above. The hash 
algorithm is applied to the EMM ID to obtain the rank, after which the nimoiber in the 
rank is found. 

The actual randomization occurs when the EMMs are, on a cyclical basis, retrieved 
from RAM 3324 using the randomization means 3340 which is implemented in the 

10 hardware and/or software of the Message Emitter. The retrieval is random, and again 
based on the hash algorithm. Firstly, a random number (in the above example initially-^ - 
in the range 1 to 256) is chosen, to yield the particular rank of interest. Secondly, a«*^ 
further random number is chosen to yield the particular number in the rank. Thev 
further random number is selected accorciing to the total number of EMMs in a givem- 

15 rank. Once a given EMM has been selefctcd^d broadcast, it is imoved to a second-- 
identical^torage area in the RAM 3324, again u Hence th'fe**' 

first are:d "diminishes in size-^as the EMMs are broadcast, to the extent that, once^a^ 
' complete rahk his been used, this is deleted: Once the first storage area is completely 
^ empty, it is replaced by the second storage area before ' a new roifad of EMM 

20 broadcast, and vice versa." = ^ " ' . 

' In the above fashion, -after two' or three cycles of the EMMs, statistically the chances 
of any two EMMs destined for the same end user being transmitted back' to back is 
negligible. 

At regular intcivals whilsf the EMMs- ai^beto^^^ the cd^putef 3050 computes - 
2y ' -tiie' number 6f*ytes"m stbrage-afia- jBrofnlthis cdn^iites the bitrate oreimisSiori given 
the glbbial bitr&ite dirfective: from-thc^rifuldptexCT iafld^^^ multipUxer; ' 

- . : r:">. •••).••'• y. :iba:y • "'.'J.*.'' 'O/. -■■.uj.-! 

Reference made ^^bove to the ba/clhip'^^ These arein fact 
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in the preferred embodiment sequential file stores, wliich hold a backup version of 
what is in the RAM 3324. In the event of failure of the Message Emitter and 
subsequent restart, or more generally when the ME is being restarted for whatever 
reason, a link is made between the RAM and the databases, over which the stored 
5 EMMs are uploaded to RAM. In. this way, the risk of losing EMMs in the event of 
failure can be removed. . . 

Similar storage of PPV EMMs occurs to that described above in relation to 
subscription EMMs, with the rank typically corresponding to a given operator and the 
number in the rank corresponding to the session number. 

10 Smartcard 

A daughter, or "subscriber", smartcard 3020 is schematically shown m Figure 18 and 
comprises an 8 bit microprocessor 110, such as a Motorola 6805 microprocessor, 
having an input/output bus coupled to a standard array of contacts 120 which in use 
are connected to a corresponding array of contacts in the card reader of the 
15 receiver/decoder 2020, the card; r reader being - of . conventional design. Hie 
\ microprocessor 110 is also provided with bus connections to preferably masked ROM 
130, RAM 140 and EEPROM. 150.; Th^ smartcard complies/»dth the ISO 7816- 
7816-2 and 7816-3 standard protocols which determine certain physical parameters 
of the smartcard, the positions of the contacts pn the chip and certain communications 
20 , between the external system (and particularly the r:eceiver/decoder .2020) and the 
. smartcard respectively and which will therefore not be further described here. One 
' function of the microprocessor 110 is to manage the memory in the smartcard, as now 
"-described:.- ■•\ . r-'\ ■ . - . 

The EEPROM 150 contains certain dynamically-created operator zones 154, 155, 156 
25 X and dynamically-created datja zones which will now be described with reference to 
':Eigure:l?, ^ , ;::v--:>i .v!: ■: . , . ^. ./ r- 

: : ;r .Rcferrog to.J^igure'-^ l^^^^^ ID" (or 

: . : ,^»am^fatf^©f) ^OW a pemianent §ubscribe^ aaaartcard 
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identifier set by the manufacturer of the smartcard 3020. 

When the smartcard is reset, the microprocessor 110 issues a signal to 
receiver/decoder 2020, the signal comprising an identifier of the conditional access 
system used by the smartcard and data generated frona data stored in the smartcard, 
5 including the card ID. This signal is stored by the receiver/decoder 2020, which 
subsequently utilises the stored signal to check whether the smartcard is compatible 
with the conditional access system used by the receiver/decoder 2020. 

The EEPROM 150 also contains a permanent "random number generator" zone 152 
which contains a program for generating pseudo-random numbers. Such random 
10 numbers are used for diversifying transaction output signals generated by the 
smartcard 3020 and sent back to the broadcaster. 

Below the random number generator zone 152 a permanent "management^* zone 153 
of 144 bytes is provided: The permanent management zone 153 is a specific operator, 
zone utilised by a program in the ROM 130 in the dynamic creation (and removal)#of 
15 zones 154* 155; 156.:. as described below. - The pennant management zone 153 
contains aa:ta ffelating to the rights of thV smartcard to create or remove zones. >^ 

.• ' ; / .* w . ... , -. • t - . . 

■ • -The program for dynamicMly CFeatiBg: zones is responsive to specific 

zone creation (or removal) EMMs Which ^afe transmitted by the SAS 3002 and 
received by the receiver/decoder 2020 and passed to the subscriber smartcard 3020. 
20 In order to weate the EMMs' the operator requires specific keys dedicated- to the 
management zone. This prevents one operator from deleting zones relating to another 
operator. 

' ' Baow thfe management zone 15i3 is a^keric* of A)peratb^ID''-zdnes-134,-15^^ 

operators 1, 2 N respectively. Normally at least one operator l6 zbine will be 

25 preloaded into the EEPROM of the subsaiber smartcard 3020 so that the end user can 
decrypt prb^anmies broadcast b^tha? bp^itor." ifowevcf furtfo dperStof ID -zones 
• * cahsiifeeqiittitrybedyna^ 
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to a transaction output signal generated via his smartcard 3020 by the end user 
(subscriber), as will subsequently be described. 

Each operator zone 154, 155, 156 contains* the identifier of the group to which the 
smartccud 3020 belongs, and the position of the smartcard within the group. This data 
5 enables the smartcard (along with the other smartcards in its group) to be responsive 
to a broadcast "group" subscription EMM having that group's addreiss (but not the 
smartcard*s position in the group) as well as to an "individual" (or commercial offers 
subscription). EMM addressed only to that smartcard within the group. There can be 
256 member smartcards of each such group and this feature therefore reduces 
10 significantly the bandwidth required for broadcasting EMMs. 

In order to reduce further the bandwidth required for broadcasting "group" subscription 
EMMs, the group data in each operator zone 154, 155, 156 and all similar zones in 
the EEPROM of smartcard 3020 and the other daughter smartcards is continually 
updated to enable a particular smartcard to change its position in each group to fill 
15 any holes created by e.g. deletion of a member of the group. The holes are filled by 
the SAS 3002 as in the STM server 3104 there is; a list of such holes. . .. , 

In this manner. fragmentation is ;reduced.and each group's membership is niaintained 
at ornear the maximum of 256 members. 

Each operator zone 154, 155, 156 is associated with one or more "operator data 
20 : objects" stored in the EEPROM 150. As shown in Figure 19, a scries pf dynamically 

created "operator data" objects 157-165 are located below the operator ID: zones: . 

Each of these objects is labelled \dth: - i \ : j : \ ; 

a) an "identifier" 1, 2, 3 .... N doMisponding to its associ^^^ 

::£N as shown in its left' hand section in Figure 19; ■ . ; - :: - ^ 

25 ^ b) 1, : ian :!'ID" indicating the type' of iobject;^ and u : ^ 

. :rc) ' a^"data" zorie reserved for data^Las shown in ^ the right hand section of each 

relevant ojperatof^ bbjtet in' Figii^^ be understood that each operator is 

associated with a similar set of data objects so that the following description of the 
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types of data in the data objects of operator 1 is. also applicable td the data objects of 
all the other operators. Also it will be noted, that, the data objects are located in 
contiguous physical regions of the EEPROM and that their order is immaterial. 

Deletion of a data object creates a "hole" 166 in the smartcard, that is, the number of 
5 bytes that the deleted objects had previously occupied are not immediately occupied. 
The thus "freed" number of bytes, or "hole" are labelled with: 

a) an "identifier" 0; and 

b) an "ID" indicating that the bytes are free to receive an object. 

The next data object careated fills the hole, .as identified by the identifier 0. In this 
10 manner the limited memory capacity (4 kilobytes) of the EEPROM 150 is efficiently 
utilised. 

Turning now to the set of data objects associated with each operator, examples of th^ 
data objects are now described. . ... . , . * ^ 

Data object 157 contains an EMM key uscdfor decrypting encrypted EMM's received^^ 
15 by the receiver/decoder 2020. This EMM key is permanently stored in the data object 
i : 157;7. This data object 157. may be created prior-to disfaibutiqn of the smartcard 3020; 
and/or may be created d3aiamically when creating a new .operator zone (as described 
above). 

. Data object 159 contains ECM keys wMch are sent by.&e associated opierator (in this 
20 case operator 1) to enable the end user to decrypt the particular "bouquet" of programs 
to which he has subscribed. New ECM 'keys are sent typically every month, along 
/ with a, group, subscription (renewal) EMM which renews" the end:'User's overall right 
to view the broadcast .fromr (in this case) operator. 1. The use ot separate EMM and 
ECM keys enables viewing/iigbts .to i bev puicha»drriiiLdiff^ this 
25 . cmbbdiment-by-isubscaription an*, mdiyidually ](Pay-:Pcr.yiew))r^d ralso increases 
% security ;; The Pay: Per Vievr (PP^ii^ mode 'will be: desc^ 



BNSDOCID: <WO_9843426AlJ_> 



wo 98/43426 



PCT/EP97/02108 



-40- 

Since new ECM keys are sent periodically, it is essential to prevent a user from usin 
old ECM keys, for example by switching off the receiver/decoder or re-setting a clock 
to prevent expiry of an old ECM key so that a timer in the receiver/decoder 2020 
could be overridden. Accordingly operatot zone 154 comprises an area (typically 
5 having a size of 2 bytes) containing an obsolescence^ date of the ECM keys. The 
smartcard 3020 is arranged to compare . this date with the current date which is 
contained in received ECMs and to prevent decryption if the current date is later than 
the obsolescence date. The obsolescence date is transmitted via EMMs, as described 
above. 

10 Data object 161 contains a 64 bit subscription bitmap which is an exact representation 
of the broadcast operator's programs to which the subscriber has subscribed. Every bit 
represents a program and is set to "1" if it is subscribed to and "0" if it is not. 

Data object 163 contains a quantity of tokens which can be used by the consumer in 
PPV mode^to buy viewing rights to an imminent broadcast e.g. in response to a free 
15 preview or other advertisement. ; Data object 163 also contains, a limit value, which 
may be set to e.g. a negative value to allow credit to the consumer. Tokens can be 
purchased e.g. by credit and via the modemmed back channel 4002v,vor by , using a 
Voice server in combination with a 'credit card,: for example. .A particuiay event can 
be charged as one token or a ntimberiof tokens. : - ; \ . 

20 Data object 165 contains a description of a PP V event, as shown with, reference to 
table 167 of Figure 20. / ^ j 

The PPV event description 167 contains a "session ID" 168 identifying the viewing 
' ' session (corresponding to the prograni and the time and ^ date , of broadcasting) a 
"sessioh- mfod&" 169 -itidicating how the viewing tight iS; being purchased (e .g. in pre- 
25 book mode), a "session index" 170 and a "session view" 171. / . . : . 

10 r i: In respect of receiving a progtsumner;^ mode, the -receiver; deqoder 2020 
! ^tei&me^ wh^thef the prograxximeisrooiieisold in PPV mode.: If so, the decoder 2020 
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checks, using the items stored in the PPV event description 167 whether the session 
ID for the programme is stored therein. If the session ID is stored therein, the control 
word is extracted from the ECM. 

If the session ID is not stored therein, by means ^of a specific application the 
5 , receiver/decoder 2020 displays a message to the end user indicating that he has the 
right to view the session at a cost of, say, 25 tokens, as read from the ECM or to 
connect to the communications servers 3022 to purchase the event. Using the tokens, 
if the end user answers "yes" (by means of remote controller 2026 (see Figure 2)) the 
decoder 2020 sends the ECM to the smartcard, th^smartcard decreases the wallet of 
10 the smartcard 3020 by 25 tokens, writes the session ED 168, the session mode 169, the 
session index 170 and the session view 171 in the PPV event description 167. ami-:, 
extracts diad deciphers the control word firom the ECM. . - 

In the "pre-book" mode, an EMM will be passed to the smartcard 3020 so that the 
smartcard will write the session ID 168, the session mode 169> the session index 170 
15 and the session view 171 in the PPV event , description 167 using the EMM. ^ 

' TTie session mdex 170 can be set to differentiate one broadcast from the other. 1^ 
. featute permits authorization to be given -for ti subset of broadcasts,- for example, ? 
times out of 5 broadcasts.. As soon ais an ECM with a session index different from 
the current session index 170 stored in the PPV event description 167 is passed to the 
20 -smartcard, the number of the session view. 1-71 is decreased by one. When the.session 
view reaches zero, the smartcard will refiise to decipher -an ECM with a different 
session index to the current session index. 

' Th&'iiiitial value of the session view dcpcndsx)nly on tlje way in whichithe. broadcast 
:suppUer--wishes"to define. the. event td; which, iti relatfcs^. the isessioH jview for a 
25 respective event; may take any v^ue»:-riu; i^^* \ t:-.- :r.?^ ; ; . . 'r: 

: . nie^-micropiocessor HO in the sniarteaid:imple|ncnts a. costing andtr^cojnparison 
- -■program: t0;detect whoi the iiinir«o>&e?numb6r-.o£t^iev^g!^ » l^jci4^iprogram 
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has been reached. . 

All of the session ID 168, the session mode 169, the session index 170 and the session 
view 171 in the PPV event description 167 may be extracted from the smartcard using 
the "call-back" procedure as described previously. 

5 Each receiver/decoder 2020 contains an identifier which may either identify uniquely 
that receiver/decoder or identify its manufacturer or may classify it in some other way 
in order to enable it to work only with a particular individual smartcard, a particular 
class of smartcards made by the same or^ a corresponding manufacturer or any other 
class of smartcards which are intended for use with that class of receiver/decoders 
10 exclusively. 

In this manner the receiver/decoders. 2020 which have . been supplied by one broadcast 
supplier to the consumer are protected against the use of non-authorised daughter 
smartcards 3020, 

Additionally or alternatively to this first "handshake" between the smartcard and the 
15 receiver, the EEPROM of the smartcard 3020 could contain a field or bitmap 
describing the categories of receiver/decoders 20!^ with which it can function. .-These 
could , be specified either during the manufacture, of the smartcard . 3020 or by a 
specific EMM. ^ . . .. , 

< The bitmap stored m the smartcard 3020 typically comprises , a list of up to 80 
20 jeccivcr/decpders, each identified with a corresponding^receiver/decodpr ED with which 
the smartcard may be used. Associated with each receiver/decoder, is a level "1" or 
"0" indicating whether the smartcard may be used with the receiver/decoder or not, 
respectively, - ^ program in the memory 2024; of the re^ceiver/decoder searches for the 
identifier of the receiveiydecoder^m^ the ;b^^ the 
25 identifier is found, and the value associated with the identifier is "1", then the 
; smartcard : is.><"eBabiecl"^^^^ not .,6mction ,w^^ that 

K,; ^•Tca^iyca:^ecoj^ ;o v . , V v; ;.^ 
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In addition, if, typically because of an agreement between operators, it is desired to 
authorize the use of other smartcards in a particular receiver/decoder, specific EMMs 
will be sent to those smartcards to change their bitmap via the transponder 2014. 

Each broadcast supplier may differentiate his subscribers according to certain 
5 predetermined criteria. For example, a number of subscribers may be classed as 
"VIPs". Accordingly, each broadcast supplier may divide his subscribers into a 
plurality of subsets, each subset comprising any number of subscribers. 

The subset to which a particular subscriber belong is set in the SMS 3004. In turn, 
the SAS 3002 transmits an EMM to the subscriber which vmtes mformation (typically 

10 of length 1 byte) concerning the subset to which the subsCTiber belongs into the 
relevant operator data zone, say 154, of the EEPROM of the smartcaid. In turn, as 
events are broadcast by the broadcast supplier, an ECM, typically of 256 bits, -is 
transmitted with the event and indicating which of the subsets of subscribers may view 
the event. If, according to the information stored in the operator zone, the subscriber 

15 does not have the right to view the event, as determined by the ECM, programme 
viewing is denied; ' • ' * ^ ' 

* This facility may be used, for example,^' to^ switch off all of a given operator's 
smartcards in a particular geographiical region during the tranismission of a particular 
program, in particular a program relating to a sports fixture taking place in that 
20 geographical region. In this manner football clubs and other sport bodies can sell 
broadcasting rights outside their locality whilst preventing local supporters from 
- viewing the fixture oh television. In this manner the local siiM>orters are encouraged 

to buy tickets and attend the fixture. ' ^ * • ' ^ • • " 

. - ...» u:.. ■ . . . -l: - . . \. \..n': ^^tiy -rixr- .r^ \ '\ 

Each of the features associated With zoHcs ISI to 172 is considered ;td be a separate 
25 invention independent of the dyrianii ^ • 

• It will be understood that the-pMftseM^-lnventiotf B^^ afebvc p?ia3«ly by 

way of example, and modifications of detail can be made wililin'thld -^Sra the 
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invention. 

Each feature disclosed in the description, and (where appropriate) the claims and 
drawings may be provided independently of in any appropriate combination. 

In the aforementioned preferred embodiments, certain features of the present invention 
5 have been implemented using computer software. However^ it will of course be clear 
to the skilled man that any of these features may be implemented using hardware. 
Furthermore, it will be readily understood that the functions performed by the 
hardware, the computer software, and such like are performed on or using electrical 
and like signals. 

10 Cross reference is made to our co-pending applications, all bearing the same filing 
date, and entitled Signal Generation and Broadcasting (Attorney Reference no. 
PG/ASB/19707), Smartcard for use with a Receiver of Encrypted Broadcast Signals, 
and Receiver (Attorney Reference No. PC/ASB/19708), Broadcast and Reception 
System and Conditional Access System therefor (Attorney Reference No. 

15 PC/ASB/19710), Dovmloadmg a Computer File from a Transmitter via a 
Receiver/Decoder to a Computer (Attorney Reference No. PC/ASBA9711), 
Transmission and Reception of Television Programmes and Other Data (Attorney 
Reference No. PC/ASB/19712), Downloading Data (Attorney Reference No. 
PC/ASB/19713), Computer Memory Organisation (Attorney Reference. No. 

20 PC/ASB/19714), Television or Radio Control System Development (Attorney 
Reference No. PC/ASB/19715), Extracting Data Sections from a Transmitted Data 
Stream (Attorney Reference No. PC/ASB/19716)i Access Control System (Attorney 
Reference No. PC/ASB/19717), Data Processing System (Attorney Reference No. 
PC/ASB/19718), and Broadcast and Reception System,* and Receiver/Decoder and 

25 Remote Controller therefor (Attorney Reference No. PC/ASB/19720). The disclosures 
of these documents are incorporated herein by reference. The list of applications 
■ * includes the present apiilicdtiorii'^ cc . :; - ; ' \ : ; . a r . 
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CLAIMS 

1. A conditional access system comprising:. 
means for generating a plurality of messages; and 

means for receiving the messages, said receiving means being adapted to 
5 communicate with said generating means via a communications server connected 
directly to said generating means. 

2. A conditional access system according to Claim 1, wherein said message is an 
entitlement message for transmission to the receiving means, said generating means 
being adapted to generate entitlement messages in response to data received from said 

10 receiving means. 

3. A conditional access system according to Qaim 1 or 2, wherein said generating 
means is arranged to transmit a message as a packet of digital data to: said receiving 
means either via said communications server. or via a satellite transponder. , , 

4. . . A conditional access system according to any preceding claim, wherein said 
15 . receiving , meaixs is . conncctable to. said; communications server via a modem and 

V IV. telephone: link. : ' u::-% « . > 'r- . — 

5. . A conditional, access system, for affording conditional access, to subscribers, 
comprising:-.^ - ■ :..m. •.^ - . ' . ■ w 

: ?: a subscriber management system; . ^ . . / 
20 . ; . a subscriber authorization jsystem^coupled to the, .subscri]t>er management 

.system;, andba* /• r • . j.^^. r"^'"^ 

a coijununicajions, server; ^ 
.-•ii.' authorization Systenj; ' x't:;-v}::;^7 v : ^ ;[.;x:npri r : - \\ 

6. A conditional access system according stft-jClaim .5^^; further .comprising a 
25 receiver/decoder for the subscriber, the receiver/decoder being connectable to said 

communications server, and hence to said subscriber autliprization system, via a 



BNSDOCID: <WO_98434aeA1_L> - -/^.^ a*,^ A _ . 



wo 98/43426 



PCT/EP97/02108 



- 46 - 

modem and telephone link. 

7. A broadcast and reception system including a conditional access system 
according to any preceding claim. . - 

8. A broadcast and reception system comprising: 

5 means for generating a plurality of entitlenient messages relating to broadcast 

programs; 

means for receiving said messages from said generating means; and 
means for connecting the receiving means to the generating means to receive 
said messages, said coimecting means being capable of effecting a dedicated 
10 connection between the receiving means and the generating means. 

9. A broadcast and reception system comprising: 

means for generating a plurality of entitlement messages relating to broadcast 
programs; 

means for receiving said messages from said generating means via a modem; 

15 ' and ' ^ ■ ■ . ^ ^ • , -. - ^ • : l r.. . - .;: A 

means for connecting said modem to said gerieriatinjg nlieans aiid said receiving 

means. 

10. A broadcast and reception^ Ostein according to Glaiim 9, -wherein said 
generating means is connected to said modem via a communications server. ' 

20 11. ' A broadcast and reception system according to Claim 9 of .10, wherein said 
receiving means is adapted to communicate with said ^gtoerating rcieans via said- 
modem and connecting means. 

12. A' ^broadcast ^^and reception Syste&^ acbording to 11, wherein said 

receiving ineadis comprises means foTr -Wading a sm^ca^ ihsertabte thereinto by an 
25 end user, the smartcard having stored^- therein data to imtiate autdmatically the 
transmission of a message from said receiving means to said generating means upon 
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insertion of the smartcard by the end user. 

13. A broadcast and reception system according to Claim llor 12, farther 
comprising a voice link to enable the end user of the broadcast and reception system 
to communicate with the generating means. 

5 14. A broadcast and reception system according to any of Claims 8 to 13, wherein 
said receiving means comprises a receiver/decoder comprising means for receiving a 
compressed MPEG-type signal, means for decoding the received signal to provide a 
television signal and means for supplying the television signal to a television. 

15. A broadcast and reception system, comprising, at the broadcast end: , ^ i 
10 a broadcast system including means for broadcasting a callback request; 

and at the reception end: . . - 

a receiver including means for, calling back the broadcast system in response 
to the callback request. 

16. A system according to Claim 15, wherein the means for calling back the 
15 . ' broadcast, systena includes, a modem connectable ta a telephone system. ^.jr^ 

17. A system according to Qaim 15 or 16, wherein the means for calling back the 
broadcast system is arranged .to . transfer to tiie broadcast system information 
concerrdng the receiver. : . • , . , . ./ , 

: 18. A system according to Qairo, 1.7,. wherein the broadcast- system includes means 
20, . for storing the information...;: .• ., :;,«;!:. c ♦ -/c/r, . Pe • r 

19. A system according to any of Claims 15 to 18, wherein the broadcast means 
is. arranged to broadcast a .cadlback; ::!^^^ includes a command that the 

callback be made at a &y,m4mPfhm4d^ qalKngb%ck.UiB broadcast system 

Js agMgsid to resppnd^to ^^ri /s h:.-:.''^-:. ! .v:^:-^ t:c 
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20, A system according to any of Claims 15 to 19, wherein the broadcasting means 
is arranged to broadcast as the callback request one or more entitlement messages for 
broadcast. 

21. A system according to any of Qaims 15 to 20, wherein the broadcast system 
5 includes means for generating a check message and passing this to the receiver, the 

receiver includes means for encrypting the check message and passing this to the 
broadcast system, and the broadcast system further includes means for decrypting the 
check message received from the receiver and comparing this with the original check 
message. 

10 22. A conditional access system or a broadcast and reception system substantially as 
herein described with reference to and as illustrated in the accompanying drawings, 
and especially Figures 12, 13 or 14 thereof. 
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